Cybersecurity Audit Analyst
Indexed description
This is an individual contributor role with no direct supervisory responsibilities.
Essential Job Functions
- Perform Application Portfolio maintenance including various attributes related to enterprise software lifecycle management and cybersecurity lifecycle attributes.
- Assist with control mapping and data maintenance related to enterprise applications, software, and systems.
- Coordinate project related activities, to include technology and compliance projects.
- Coordination of enterprise technology and cybersecurity invoices, approvals, and oversight including financial coding and cost tracking for expenditures.
- Maintain cybersecurity policies, procedures, and standards in alignment with applicable frameworks.
- Track compliance requirements and ensure documentation is current and complete.
- Assist in implementation and monitoring of security protocols.
- Support ongoing compliance initiatives and reporting requirements.
- Prepare for and support internal and external audits.
- Coordinate audit requests, including collection and organization of required documentation.
- Maintain audit artifacts and ensure readiness for review.
- Track audit findings and support remediation efforts through closure.
- Assist in conducting risk assessments and documenting results.
- Maintain and update risk registers.
- Track mitigation plans and follow up on remediation activities.
- Support third-party and vendor risk management processes.
- Maintain records related to access reviews, training compliance, and security activities.
- Coordination of enterprise technology and cybersecurity invoices, approvals, and oversight including financial coding and cost tracking for expenditures.
- Support documentation and tracking security incidents.
- Manage administrative workflows related to the cybersecurity program.
- Ensure proper retention and organization of compliance documentation.
- Collaborate with BTS, Engineering, Quality, and Operational teams to support compliance and security initiatives.
- Provide guidance on cybersecurity policies and procedures as needed.
- Support continuous improvement of cybersecurity and compliance processes.
- EXPERIENCE
- EDUCATION
- Bachelor’s degree in Cybersecurity, Information Systems, or related field, or equivalent experience.
- 2-5 years of experience in cybersecurity, compliance, or GRC related functions.
- Experience supporting audits and compliance programs.
- Working knowledge of cybersecurity frameworks.
- Strong organizational skills and attention to detail.
- Strong documentation and recordkeeping skills.
- Ability to manage multiple tasks and meet deadlines.
- Experience with CMMC or Department of Defense (DoD) compliance requirements.
- Experience in manufacturing or regulatory industry environment.
- Relevant certifications (E.G. Security+. CISA, CISM, or similar).
- Experience with GRC or compliance management tools.
- Experience or strong familiarity with CMMC, NIST 800-171, SOX 404, and/or related cybersecurity compliance requirements.
- SOX (Sarbanes-Oxley Act) compliance (Section 404, ICFR, etc) experience and/or related compliance control mapping experience in a regulated environment preferred.
- Experience with Risk Management Frameworks and Risk Assessments preferred.
Due to the nature of our work and applicable U.S. export control laws, this position requires International Traffic in Arms Regulations (ITAR) eligibility. Only individuals who qualify as a “U.S. person” as defined by ITAR (U.S. citizens, U.S. permanent residents, refugees, or asylees), unless specified otherwise within job description, are eligible for employment.
Applied Aerospace & Defense (“AA&D”) is committed to equal employment opportunity. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, age, disability, veteran or military status, or any other characteristic protected by applicable federal, state, or local law.
Applicants who require reasonable accommodation for any part of the application or hiring process due to disability, medical condition, or other protected reason may contact the Human Resources Department. Requests will be reviewed in accordance with applicable law.
Where required by law, the applicable pay range and a summary of benefits and other compensation for this position will be provided.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search